On Wed, Aug 29, 2018 at 04:55:09PM +0000, Salz, Rich wrote: > I read the link you posted, thanks. > > As long as we’re not breaking the HTTP spec, I agree that SHOULD seems to get > the most interop. As long as we’re getting signed reponses back, I don’t > think it matters much where the redirect sends you.
Maybe I just missed it, but are we getting a signed response back? I thought it was just the plaintext key authorization. -Benjamin _______________________________________________ Acme mailing list [email protected] https://www.ietf.org/mailman/listinfo/acme
